SOC 2 Reports Clause Samples

POPULAR SAMPLE Copied 22 times

SOC 2 Reports. In addition to its other obligations under this Section 9.9, Service Provider shall cause a Service Organization Controls 2 Report, type 2, ("SOC 2 Report") (SOC 2: Attestation Standards, Section 101 of the AICPA Codification Standards (AT Section 101). "Reporting on Controls at a Service Organization Relevant to Security, Availability, Processing Integrity, Confidentiality, or Privacy (SOC 2)", to be conducted by an independent, nationally recognized public accounting firm qualified to perform such audits at least annually, prepared in accordance with the relevant and current standards. The Service Provider acknowledges that each such SOC 2 Report shall cover Service Provider's policies, procedures, controls and systems for the twelve (12) months of Service Provider's performance of the Services immediately after the Commencement Date (and each successive twelve (12) month period thereafter), and in particular those policies, procedures, controls and systems applicable to an audit of Service Provider's customers. Prior to initiating any such SOC 2 Report, Service Provider shall confer with DIR as to the scope and timing of each SOC 2 Report and shall accommodate DIR's requested modifications (if any) for each such SOC 2 Report to the extent reasonably practicable.

View Similar (3)

SOC 2 Reports. (i) In addition to its other obligations under this Section 9.8, Successful Respondent shall cause a Service Organization Controls 2 Report, type 2, ("SOC 2 Report") (SOC 2: Attestation Standards, Section 101 of the AICPA Codification Standards (AT Section 101). "Reporting on Controls at a Service Organization Relevant to Security, Availability, Processing Integrity, Confidentiality, or Privacy (SOC 2)", as published by the AICPA in 2011) to be conducted by an independent, nationally recognized public accounting firm qualified to perform such audits at least annually, prepared in accordance with the relevant and current standards. The Successful Respondent acknowledges that each such SOC 2 Report shall cover Successful Respondent's policies, procedures, controls and systems for twelve (12) months of Successful Respondent's performance of the Services, in accordance with the State fiscal year (and each successive twelve (12) month period thereafter), and in particular those policies, procedures, controls and systems applicable to an audit of Successful Respondent's customers. Prior to initiating any such SOC 2 Report, Successful Respondent shall confer with DIR as to the scope and timing of each SOC 2 Report and shall accommodate DIR's requested modifications (if any) for each such SOC 2 Report to the extent reasonably practicable. (ii) Successful Respondent shall cause its Subcontractors performing the Services to allow SOC 2 Reports on their policies, procedures, controls and systems that complement the SOC 2 Report performed pursuant to clause (i) above, when requested by Successful Respondent, DIR, Customers, Texas State Auditor’s Office, and other entities authorized by DIR. If Successful Respondent is unable to cause its Subcontractors to conduct such SOC 2 Reports or chooses to conduct the SOC 2 Reports of such complementary policies, procedures, contracts and systems itself, then Successful Respondent shall engage an independent, nationally recognized public accounting firm to perform such audits of its Subcontractors to ensure that the policies, procedures, controls and systems of the Subcontractor complement those of Successful Respondent. For purposes of this clause (ii), the term "complement" shall mean that the policies, procedures, controls and systems of the Subcontractors, when taken as a whole in combination with the policies, procedures, controls and systems of Successful Respondent, represent the entire control environment under this Agre...

View Similar (2)

Filter & Search

Parent Clauses